Use Outlook Anywhere to connect to your Exchange server without VPN

In a local area network (LAN) environment, Outlook 2010 and Outlook 2007 communicate with Microsoft Exchange Server by using remote procedure call (RPC) with Transmission Control Protocol/Internet Protocol (TCP/IP). This method provides quick and efficient access in a corporate network.

However, access to Exchange when you are outside of your organization's firewall, such as when you are at home or traveling, usually requires a virtual private network (VPN) connection to the organization's network. A VPN provides you with a connection within an organization's network and within its firewall. A VPN also enables access to more network services than those required for just e-mail access.

For remote connections, Outlook offers Outlook Anywhere, an alternative to VPN connections that allows you to use Outlook just as you normally do at your organization, without the need for any special connections or hardware, such as smart cards and security tokens. Outlook can connect to Exchange through the Internet by using remote procedure call (RPC) over HTTP. The Outlook Anywhere feature allows you to access your Exchange account remotely from the Internet when you are working outside your organization's firewall.

For Exchange Server 2003, 2007, and 2010, your Exchange administrator must configure the server to permit connections via HTTP. Exchange administrators can find more information about configuring this feature in the Microsoft Office Resource Kit and in Microsoft Exchange documentation.

For Exchange Server 2013 or 2016, Outlook Anywhere is enabled by default, because all Outlook connectivity takes place via Outlook Anywhere. The only post-deployment task you must perform to successfully use Outlook Anywhere is to install a valid SSL certificate on your Client Access server. Mailbox servers in your organization only require the default self-signed SSL certificate.

Enable Outlook Anywhere in Outlook

For Outlook 2007 and 2010, your Exchange administrator can automatically configure all copies of Outlook in your organization or provide a special executable script file that enables Outlook Anywhere. You can also manually configure Outlook Anywhere if the system requirements are met and you have the correct URL and security information from your Exchange administrator.

Under Outlook Anywhere, select the Connect to Microsoft Exchange using HTTP check box.

To specify a proxy server, click Exchange Proxy Settings.

Type the URL provided by your Exchange administrator.

If your Exchange administrator tells you to use a Secure Sockets Layer (SSL) connection, select the Connect using SSL only check box.

If your Exchange administrator instructs you to do so, select the Only connect to proxy servers that have this principal name in their certificate check box, and then type msstd: followed by the URL provided by the administrator.

Note: If you click Basic Authentication or NTLM Authentication and an LM Compatibility Level of less than 2, you will be prompted for a password each time a connection is made to Exchange. With Basic Authentication, the password is sent in clear text. For increased security, we recommend that you select the NTLM Authentication and Connect using SSL only options.

On the Tools menu, click Account Settings, select the Exchange account, and then click Change.

Click More Settings, and then click the Connection tab.

Under Outlook Anywhere, select the Connect to Microsoft Exchange using HTTP check box.

Note: If the Outlook Anywhere section is not available, your computer is probably not running Windows XP Service Pack 2 or a later service pack.

To specify a proxy server, click Exchange Proxy Settings.

Type the URL provided by your Exchange administrator.

If your Exchange administrator tells you to use a Secure Sockets Layer (SSL) connection, select the Connect using SSL only check box.

If your Exchange administrator instructs you to do so, select the Only connect to proxy servers that have this principal name in their certificate check box, and then type msstd: followed by the URL provided by the administrator.

Note: If you click Basic Authentication or NTLM Authentication and an LM Compatibility Level of less than 2, you will be prompted for a password each time a connection is made to Exchange. With Basic Authentication, the password is sent in clear text. For increased security, we recommend that you select the NTLM Authentication and Connect using SSL only options.